|Publication number||US8094621 B2|
|Application number||US 12/370,750|
|Publication date||Jan 10, 2012|
|Filing date||Feb 13, 2009|
|Priority date||Feb 13, 2009|
|Also published as||US20100208690|
|Publication number||12370750, 370750, US 8094621 B2, US 8094621B2, US-B2-8094621, US8094621 B2, US8094621B2|
|Inventors||Jianlin Guo, Raymond Yim, Jinyun Zhang|
|Original Assignee||Mitsubishi Electric Research Laboratories, Inc.|
|Export Citation||BiBTeX, EndNote, RefMan|
|Patent Citations (16), Non-Patent Citations (1), Referenced by (4), Classifications (6), Legal Events (3)|
|External Links: USPTO, USPTO Assignment, Espacenet|
This invention relates generally to wireless communication networks, and more particularly to fast handover (handoff) for WiMAX networks.
A typical Worldwide Interoperability for Microwave Access (WiMAX) network based on the IEEE 802.16 standard, includes a set of base stations (BS), and a set of mobile stations (MS) (subscriber stations) served by each base station. A handover from one BS to another can be due to a number of reasons, such as MS mobility, network availability, service availability, network capability, quality of service (QoS), cost, user preference, etc. The handover can be initiated either by the BS or the MS.
There are two types of handover: hard handover and soft handover. In hard handover, the MS first disconnects from the current network and then connects to a target network. In soft handover, the MS first connects to the target network, and then disconnects from the current network.
Service continuity is a key to provide good service to mobile users during the handover. When the MS switches from one BS to another, the handover process should be seamless to mobile users, and ongoing services should not be interrupted. To achieve seamless handover, the amount of time taken for switching network connection must be minimized. According to the ITU TTA evaluation report in May 2007, MS-initiated hard handover takes at least 105 ms without authentication/authorization. WiMAX allows EAP authentication and RSA authorization. EAP authentication process may take seconds to complete as pointed out by R. Fantacci et al, “Analysis of Secure Handover for IEEE 802.1X-Based Wireless Ad Hoc Networks”, IEEE Wireless Communications, October 2007. Therefore, some of network entry procedures need to be done before the handover takes place.
To facilitate the handover between the BSs, Macro Diversity Handover (MDHO) and Fast BS Switching (FBSS) are defined in the WiMAX standard. Both MDHO and FBSS are soft handover protocols. Both MDHO and FBSS are based on a set of BSs, called a diversity set. For the MS, its diversity set changes dynamically. There are several requirements enforced on for both MS and its diversity set in MDHO and FBSS procedures. The MS monitors the BSs and dynamically modifies the diversity set accordingly. BSs in a diversity set share information. There is no authentication or authorization involved in MDHO and FBSS, which can lead to serious security issues. In the invented fast handover protocols, there is no diversity set and handover process can be completed within 100 ms with authentication/authorization for MS-initiated hard handover.
As shown in
The embodiments of the invention provide a novel fast handover protocol for mobile stations (MS) in WiMAX networks including base stations (BS). The handover protocol performs basic capability negotiation, and the authentication/authorization procedures, before the handover process, to minimize the time that connectivity is interrupted during the handover. The protocol does not manage the diversity set.
The embodiments include:
The MS is registered with the current BSC. The handover protocols according to embodiments of our invention complete basic capability negotiation and the authentication/authorization procedures before handover operation takes place. Authentication/authorization is the most time-consuming operation in network entry due to the fact that the authentication/authorization process, key generation and distribution may take up to hundreds of milliseconds to complete. Also, the AAA server can be far away, and connected to the network through many hops in the backbone network.
The EAP is an authentication framework. It provides common functions and a negotiation of the desired authentication method. Each protocol using EAP defines a way to encapsulate EAP messages. WiMAX defines EAP-Start, EAP-Transfer, and EAP-Complete messages for that purpose. For both RSA authorization and EAP authentication, an Authorization Key (AK) is generated as a shared secret between the MS and BS to secure further transactions.
For the RSA authorization, the BS and the MS verify their identities using a manufacturer-issued X.509 digital certificate, which is an ITU-T standard for a public key infrastructure (PKI) for single sign-on and Privilege Management Infrastructure (PMI). X.509 specifies, amongst other things, standard formats for public key certificates, certificate revocation lists, attribute certificates, and a certification path validation.
As shown in
In the CID-REQ message, the MS 301 transmits its Media Access Control (MAC) address via the current serving BSC 302 to the target BST 303. Upon receipt of CID-REQ message, the target BST assigns a Basic CID and a Primary Management CID to the requesting MS and transmits the assigned CIDs in the CID-RSP message via current serving BSC to requesting MS. The target BST and the requesting MS use assigned the Basic CID and Primary CID for capability negotiation, authentication/authorization, and network entry process.
Fast Handover with RSA Authorization
To prepare for fast handover, the MS first transmits a CID-REQ message to the target BS. In response, to the CID-REQ message, the target BS transmits back a CID-RSP message to the MS. The CID-RSP message contains the Basic Capabilities CID and Primary Management CID assigned to the requesting MS.
Then the MS negotiates the basic capabilities with the target BST by transmitting a SBC-REQ (SS Basic Capability Request) message 320. The basic capabilities include bandwidth allocation support, physical parameters supported, and security negotiation parameters. The target BST responds with a SBC-RSP (SS Basic Capability Response) message 321 with an intersection of the MS and target BS capabilities.
If the MS and target BST agree to use RSA authorization, the MS transmits an RSA-Request message 330 to target BS. The RSA-Request message contains the X.509 digital certificate, and other required parameters. The X.509 digital certificate contains MS's public key and MAC address. The target BS knows the manufacturer's public key and can verify 335 the MS's identity. The target BST activates a pre-PAK (pre-Primary Authorization Key). The target BS transmits a RSA-Response message 331 to the MS, which is acknowledged 332. The RSA-Response message contains the pre-PAK encrypted with MS's public key, target BS's X.509 digital certificate, and other security parameters.
The MS also knows manufacturer's public key and can verify 340 the target BS's identity. The MS and target BS respectively derive 350-351 a PAK (Primary Authorization Key) from the pre-PAK, MS's MAC address and target BS's BSID. The MS and target BS then generate an AK from PAK, MS's MAC address and target BS's BSID. The AK is the shared secret between the MS and target BS and is used by the MS and target BST for secure communications. Before the MS starts handover process, the MS needs to refresh the AK with target BS according the length of AK's life time.
After the above initialization, during the actual handover, the MS and the BSC exchange MOB-MSHO-REQ 360, MOB-BSHO-RSP 361, and MOB-HO-IND 362. Then the MS and BST only need to perform the ranging 370, 371 and registration 380, 381 for MS to enter the network.
Fast Handover with EAP Authentication
The MS requests CIDs and negotiates basic capabilities with target BS. If the MS and target BS agree to use EAP authentication, the MS starts the EAP authentication process by transmitting an EAP-Start message 440 to target BS, which forwards the MS's request to the corresponding AAA server. The MS and AAA server then start the EAP authentication process 441. Target BS bridges the EAP messages between MS and AAA server. When the MS receives the EAP payload from an EAP method for transmission to the target BST, or when target BST has the EAP payload received from the EAP method for transmission to the MS, the EAP-Transfer message is used to encapsulate the EAP payload. The product of EAP authentication is a Master Session Key (MSK) 445, which is known to the AAA server and the MS. The AAA server transfers the MSK to target BS. The MS and target BST use the MSK to derive a Pairwise Master Key (PMK). The MS and target BS use PMK, target BS's BSID and MS's MAC address to generate an AK, which is the shared secret between the MS and target BS.
The MS and target BS maintain 450-451 cached PMK and AK according to the policy in WiMAX specification. Prior to the handover process, the MS needs to refresh the AK with target BS according to the length of AK's lifetime. During the actual handover, the MS only needs to perform the ranging and registration procedures to enter the network.
Although the invention has been described by way of examples of preferred embodiments, it is to be understood that various other adaptations and modifications may be made within the spirit and scope of the invention. Therefore, it is the object of the appended claims to cover all such variations and modifications as come within the true spirit and scope of the invention.
|Cited Patent||Filing date||Publication date||Applicant||Title|
|US7613148 *||Nov 3, 2009||Samsung Electronics Co., Ltd||Method and apparatus for performing fast handover through fast ranging in a broadband wireless communication system|
|US7961678 *||Jun 14, 2011||Samsung Electronics Co., Ltd.||Apparatus and method for transmitting and receiving connection identifier information in a communication system|
|US20050250499 *||May 9, 2005||Nov 10, 2005||Samsung Electronics Co., Ltd.||System and method for handover capable of minimizing service delay in broadband wireless access communication system|
|US20050265360 *||May 6, 2005||Dec 1, 2005||Lg Electronics Inc.||IP addressing to support IPv4 and IPv6|
|US20060030309 *||Aug 1, 2005||Feb 9, 2006||Lg Electronics Inc.||Performing association during handover in wireless access system|
|US20060178880 *||Feb 4, 2005||Aug 10, 2006||Microsoft Corporation||Method and apparatus for reducing noise corruption from an alternative sensor signal during multi-sensory speech enhancement|
|US20060234742 *||Mar 24, 2006||Oct 19, 2006||Lg Electronics Inc.||Method of connecting to network in broadband wireless access system|
|US20070232305 *||Feb 7, 2007||Oct 4, 2007||Samsung Electronics Co., Ltd.||Network entry method in wireless mobile communication system|
|US20070238464 *||Mar 29, 2007||Oct 11, 2007||Samsung Electronics Co., Ltd.||Apparatus and method for performing handover in a communication system|
|US20080037480 *||Aug 14, 2006||Feb 14, 2008||Muthaiah Venkatachalam||Broadband wireless access network and method for internet protocol (ip) multicasting|
|US20090011790 *||Jul 7, 2008||Jan 8, 2009||Samsung Electronics Co., Ltd.||Apparatus and method for managing connection identification in a communication system|
|US20090019284 *||Mar 9, 2006||Jan 15, 2009||Electronics And Telecommunications Research Instit||Authentication method and key generating method in wireless portable internet system|
|US20090042567 *||Aug 6, 2008||Feb 12, 2009||Samsung Electronics Co. Ltd.||Apparatus and method for transmitting and receiving connection identifier information in a communication system|
|US20090186601 *||Jan 9, 2009||Jul 23, 2009||Lg Electronics Inc.||Pre-authentication method for inter-rat handover|
|US20090209254 *||Apr 24, 2009||Aug 20, 2009||Naoki Oguchi||Radio Communication System, Radio Base Station, And Base Station Switching Method|
|US20100118702 *||Nov 10, 2008||May 13, 2010||Qualcomm Incorporated||Methods and apparatus supporting adaptive decentralized traffic scheduling including a dynamic transmitter yielding threshold|
|1||R. Fantacci et al, "Analysis of Secure Handover for IEEE 802.1X-Based Wireless Ad Hoc Networks", IEEE Wireless Communications, Oct. 2007.|
|Citing Patent||Filing date||Publication date||Applicant||Title|
|US8855055 *||Dec 29, 2010||Oct 7, 2014||Lg Electronics Inc.||Method for receiving information on peripheral legacy base station in terminal of legacy support mode|
|US8867488 *||Mar 22, 2012||Oct 21, 2014||Huawei Device Co., Ltd.||Method, system and device for network handover|
|US20120182970 *||Jul 19, 2012||Huawei Device Co., Ltd.||Method, system and device for network handover|
|US20120287884 *||Dec 29, 2010||Nov 15, 2012||Lg Electronics Inc.||Method for receiving information on peripheral legacy base station in terminal of legacy support mode|
|U.S. Classification||370/331, 455/437|
|Cooperative Classification||H04W36/0055, H04W36/0038|
|Feb 28, 2010||AS||Assignment|
Owner name: MITSUBISHI ELECTRIC RESEARCH LABORATORIES, INC., M
Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNORS:GUO, JIANLIN;YIM, RAYMOND;ZHANG, ZINYUN;SIGNING DATES FROM 20100112 TO 20100222;REEL/FRAME:024003/0783
|Aug 12, 2015||FPAY||Fee payment|
Year of fee payment: 4
|Aug 12, 2015||SULP||Surcharge for late payment|